Anonymous
2026-07-06 16:33:04
(4 days ago)
Failed login attempt detected by Fail2Ban in plesk-modsecurity jail
Exploited Host
๐ณ๐ฑ
homeshowdomain.nl
2026-07-02 22:00:31
(1 week ago)
Auto-ban: >3000 req/min op 2026-07-02
Web App Attack
SSH
Hacking
๐ฉ๐ช
ghostwarriors
2026-07-02 15:50:32
(1 week ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-02 12:21:02
(1 week ago)
Bot / scanning and/or hacking attempts: GET /.git/config HTTP/1.1
Hacking
Web App Attack
๐ฉ๐ช
Blexyel
2026-07-02 11:38:50
(1 week ago)
170.64.131.53 - - [02/Jul/2026:13:38:50 +0200] "GET /.git/config HTTP/1.1" 301 169 "-" "Mozilla/5.0 ...
show more
170.64.131.53 - - [02/Jul/2026:13:38:50 +0200] "GET /.git/config HTTP/1.1" 301 169 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" "pingusmc.org"
...
show less
Brute-Force
Web App Attack
๐ซ๐ท
LRob
2026-07-02 11:00:06
(1 week ago)
WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 10:11:06
(1 week ago)
(mod_security) mod_security (id:949110) triggered by 170.64.131.53 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:949110) triggered by 170.64.131.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 06:10:59.665966 2026] [security2:error] [pid 22130:tid 22130] [client 170.64.131.53:52172] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "mijn.photo"] [uri "/.git/config"] [unique_id "akY5M_YEnyb8IF7Vkh_KtgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Ba-Yu
2026-07-02 10:10:12
(1 week ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
๐บ๐ธ
kosada.com
2026-07-02 09:18:39
(1 week ago)
Web vulnerability probing: /.git/config
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 07:52:15
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 170.64.131.53 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 170.64.131.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 03:52:09.598275 2026] [security2:error] [pid 5141:tid 5141] [client 170.64.131.53:51338] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "the-it-man.com"] [uri "/.git/config"] [unique_id "akYYqfE_gwrwXHRwDFG5rgAAADo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
thetomtaylor.co.uk
2026-07-02 07:08:01
(1 week ago)
Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice02,wa01,wa02]
Hacking
Brute-Force
Bad Web Bot
Web App Attack
๐ต๐ฑ
sefinek.net
2026-07-02 06:32:34
(1 week ago)
Triggered Cloudflare WAF (firewallCustom) from AU.
Action: BLOCK | Protocol: HTTP/1.1 (GET) | Endpoi ...
show more
Triggered Cloudflare WAF (firewallCustom) from AU.
Action: BLOCK | Protocol: HTTP/1.1 (GET) | Endpoint: /.git/config | UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36 โข Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-02 06:13:54
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 170.64.131.53 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 170.64.131.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 02:13:50.256691 2026] [security2:error] [pid 26547:tid 26547] [client 170.64.131.53:38716] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "psychoatomicpower.com"] [uri "/.git/config"] [unique_id "akYBnn_N-tAYYbbstGGargAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-02 06:08:40
(1 week ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-193)
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 05:47:56
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 170.64.131.53 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 170.64.131.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 01:47:52.264492 2026] [security2:error] [pid 15050:tid 15050] [client 170.64.131.53:38722] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "puckerbottombikini.com"] [uri "/.git/config"] [unique_id "akX7iNhX0-tL2Srx859dqAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack